A new project called IP Crawl has created a searchable map documenting thousands of unsecured webcams accessible directly from the public internet. The discovery highlights a widespread misconfiguration issue affecting consumer and commercial devices.
IP Crawl operates as a living atlas, continuously scanning for and cataloging webcams with default credentials or open ports. The project indexes devices across multiple regions, making it possible to locate and access feeds with minimal technical knowledge.
The exposed cameras span residential and commercial installations, from baby monitors to security systems. Most instances result from users failing to change default passwords or misconfiguring network settings during setup.
Security researchers note the discovery underscores persistent IoT device vulnerabilities. Manufacturers often ship products with weak security defaults, and users frequently neglect basic hardening steps. The public nature of IP Crawl's database has sparked discussion about responsible disclosure, with some arguing the project raises necessary awareness while others warn it facilitates unauthorized access.
Experts recommend users disable remote access unless necessary, change all default credentials immediately, and keep firmware updated. Network administrators should implement proper segmentation to isolate IoT devices from sensitive systems.
A US federal judge dismissed a class action lawsuit accusing Apple of failing to prevent child sexual abuse material from spreading through iCloud, citing Section 230 protections for online platforms.
A threat actor has created nearly 300 fraudulent GitHub repositories impersonating legitimate software and security projects to distribute infostealer malware to unsuspecting developers.
LastPass has issued a warning about an active phishing campaign using fraudulent security notices to redirect users to malicious websites. The scheme targets both LastPass and Bitwarden password manager users.
Microsoft has rolled out cumulative updates KB5101650 and KB5099414 for Windows 11, addressing security vulnerabilities and bugs across multiple versions. The updates target versions 25H2/24H2 and 23H2.